JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.230.174

216.26.230.174 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.230.174

Whois 216.26.230.174

IP Abuse Reports for 216.26.230.174:

This IP address has been reported a total of 32 times from 17 distinct sources. 216.26.230.174 was first reported on September 28th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-06-22 19:20:46 (2 days ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 22-20.216.26.230.174.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 22-20.216.26.230.174.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-04-10 21:35:12 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 00-35.216.26.230.174.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 00-35.216.26.230.174.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 cyfordtechnologies.com	2026-03-28 15:07:46 (2 months ago)	High-abuse ASN prefix: 216.26. : Reported by Cyford API	Web App Attack
🇩🇪 barbarella	2026-02-09 19:34:59 (4 months ago)	Configuration snooping with modified .env.* file (GET /.env.save)	Hacking Web App Attack
🇬🇧 SilverZippo	2026-02-09 18:03:54 (4 months ago)	Web App Attack	Web App Attack
🇩🇪 HandyTreff.de	2026-01-02 03:13:23 (5 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -70.617 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -70.617 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0 show less	Bad Web Bot Web App Attack
Anonymous	2025-12-28 03:49:05 (5 months ago)	Forum/form spam	Web Spam
Anonymous	2025-12-22 14:13:45 (6 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.22 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.22 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 08:33:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:33:25.776010 2025] [security2:error] [pid 22500:tid 22500] [client 216.26.230.174:38679] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thekcpages.com.loudenlow.com"] [uri "/.svn/wc.db"] [unique_id "aSa7Ve2_lKx3x_mKhyWBEQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:38:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:38:46.955033 2025] [security2:error] [pid 19828:tid 19828] [client 216.26.230.174:54021] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.polymermembranes.com"] [uri "/.env"] [unique_id "aSagdmnOj3w2OUV1mxQ6dwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:08:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:08:50.142258 2025] [security2:error] [pid 3365544:tid 3365630] [client 216.26.230.174:59411] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.digitaltalkingbible.com"] [uri "/.git/HEAD"] [unique_id "aSZhMp6gyU3zOv0h7a538wAAAgg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:52:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:52:51.104857 2025] [security2:error] [pid 7084:tid 7084] [client 216.26.230.174:20505] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.godarise.kidswow.com"] [uri "/.git/HEAD"] [unique_id "aSZPY1QZeudfuWgFdIUb6AAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:02:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:02:11.823887 2025] [security2:error] [pid 30751:tid 30751] [client 216.26.230.174:22295] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tiny.abecasis.com"] [uri "/.env"] [unique_id "aSVUc4hM43tKjCU6mwggFgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:57:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:56:42.517462 2025] [security2:error] [pid 8490:tid 8490] [client 216.26.230.174:38781] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.chairetis.com"] [uri "/.env"] [unique_id "aSU3CtGBBq6RsMNB94AuJQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:19:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:19:28.352989 2025] [security2:error] [pid 15253:tid 15253] [client 216.26.230.174:28575] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.vollmer.ws"] [uri "/.env"] [unique_id "aSUuUAocmKeUAA3hBS_h2AAAABA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.181

🇺🇸 2607:f8b0:4023:100d::123

🇺🇸 66.132.195.126

🇸🇨 45.194.67.146

🇫🇷 45.94.209.235

🇪🇹 213.55.95.186

🇮🇳 125.19.182.118

🇨🇳 124.130.253.184

🇮🇩 114.10.18.181

🇫🇷 91.231.89.47

🇭🇰 52.175.50.71

🇳🇱 34.90.3.54

🇧🇪 34.38.118.68

🇧🇪 198.235.24.204

🇩🇪 194.187.176.178

🇲🇽 187.191.48.23

🇷🇺 185.40.30.168

🇦🇲 176.32.193.16

🇧🇷 43.164.197.97

🇬🇧 35.203.211.185